This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft File: zQPRPdJvAESig_xqEedWoqK1aRs.mft (raw, json) Hash identifier: c+5UhnvxgFaET4gPs4xXzYxl3f2lD9BGxMzzxWj7cdM= Subject key identifier: 02:11:74:4E:49:0E:C2:81:CA:DB:31:F7:29:97:21:D5:91:87:6C:37 Authority key identifier: CD:03:D1:3D:D2:6F:00:44:A2:83:FC:6A:11:E7:56:A2:A2:B5:69:1B Certificate issuer: /CN=cd03d13dd26f0044a283fc6a11e756a2a2b5691b Certificate serial: 019BFB40800AF885F4EC9D56E3EC20EC5B6A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zQPRPdJvAESig_xqEedWoqK1aRs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft Manifest number: 02F1 Signing time: Mon 26 Jan 2026 17:01:06 +0000 Manifest this update: Mon 26 Jan 2026 17:01:06 +0000 Manifest next update: Tue 27 Jan 2026 17:01:06 +0000 Files and hashes: 1: DV_1PU5sghttOAyD5Fk0auja6M4.roa (hash: vyYX2XFHKs4PfXvL2MDa+XaKNUQzIY/+9Y9TmVp9CiU=) 2: zQPRPdJvAESig_xqEedWoqK1aRs.crl (hash: ohtJH3LY7XcqmJNOskjHYcLO1swuiJMitVJFHZIrnOY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft rsync://rpki.ripe.net/repository/DEFAULT/zQPRPdJvAESig_xqEedWoqK1aRs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fb:40:80:0a:f8:85:f4:ec:9d:56:e3:ec:20:ec:5b:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cd03d13dd26f0044a283fc6a11e756a2a2b5691b Validity Not Before: Jan 26 17:01:06 2026 GMT Not After : Jan 27 17:01:06 2026 GMT Subject: CN=0211744e490ec281cadb31f7299721d591876c37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:21:19:dc:7c:21:40:6a:65:b5:97:84:d2:f2: e5:38:a6:61:c9:de:aa:2c:8f:96:76:9c:3c:00:ee: 01:2f:34:80:63:5d:21:b0:74:32:5d:c0:c1:95:4a: 0b:eb:55:d6:94:1e:d4:f0:96:b5:f3:7d:57:a7:ca: a4:95:ad:11:88:7c:fb:a6:26:4a:dd:f8:13:63:d9: 74:11:43:08:22:fb:93:6c:11:7c:4b:dc:95:ea:90: e6:9f:aa:32:6f:29:ab:7d:4d:71:f5:6d:8f:43:98: 16:16:21:40:50:d9:c0:10:a9:0e:81:35:9e:f3:52: ad:01:e0:24:90:9d:7b:7c:02:50:0f:02:1c:94:69: f0:7c:fe:6a:c8:02:47:55:22:20:b1:65:3b:15:9e: d0:86:f9:69:09:05:e3:f5:07:b9:9a:7b:2d:44:5a: 77:dc:44:44:92:27:38:7c:62:b5:9b:b0:5a:2d:97: 55:40:b8:a7:74:0d:fa:09:34:86:7b:a4:47:cd:f1: 20:92:97:37:fe:3e:a0:41:30:af:7f:e5:3e:94:33: fc:22:3a:b2:f6:fd:b4:a4:bb:3e:a4:07:f3:9d:61: 4e:38:bd:53:99:b4:b3:82:8c:99:ca:70:82:d7:03: db:65:0f:16:ea:d4:28:43:ac:01:23:e1:5b:70:9c: 8d:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:11:74:4E:49:0E:C2:81:CA:DB:31:F7:29:97:21:D5:91:87:6C:37 X509v3 Authority Key Identifier: keyid:CD:03:D1:3D:D2:6F:00:44:A2:83:FC:6A:11:E7:56:A2:A2:B5:69:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zQPRPdJvAESig_xqEedWoqK1aRs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/cfd41e-398d-4f1b-9995-1a3ff532bc20/1/zQPRPdJvAESig_xqEedWoqK1aRs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:c3:ee:a0:22:35:27:ac:ac:cb:26:7b:02:24:a3:1f:f3:1b: 3e:59:f0:ac:cc:ec:b9:c3:e8:77:d1:4a:ac:55:0b:93:1f:3a: ee:3b:2e:64:44:32:c6:37:59:f9:45:66:a5:b5:2b:fd:9b:41: e7:07:af:3c:80:ef:57:31:1f:d7:ad:37:d8:cc:fd:27:9d:67: da:5a:10:3f:21:5d:72:4c:53:55:80:3d:5f:20:4f:a3:d8:d6: da:63:b4:44:d2:19:9c:ad:bb:07:8b:7f:3f:f3:6e:f0:01:ac: b3:ca:57:41:16:96:cf:8a:52:a4:3c:20:5c:ab:60:d4:09:d9: 17:a7:94:b1:e9:b0:6c:96:3a:3c:2b:45:33:4c:06:5c:95:14: 4b:4b:59:c9:2f:99:8d:1d:fc:67:b5:c9:73:50:00:8f:02:07: 36:33:e7:62:18:ec:00:81:cf:39:e7:44:5f:19:93:03:f3:3c: dd:c9:2b:37:d8:72:0f:cf:d4:95:be:4b:8a:ac:34:73:2d:c6: c5:ce:cb:b8:3c:ea:05:43:46:bd:ab:17:20:53:72:c9:dc:50: 83:16:df:58:cf:e9:c1:73:74:78:bb:70:46:cf:a4:31:a7:8e: c4:f3:23:4e:2a:86:45:7b:7d:d9:06:6f:17:2e:f7:22:6f:76: 29:17:1e:28 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv7QIAK+IX07J1W4+wg7FtqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkMDNkMTNkZDI2ZjAwNDRhMjgzZmM2YTExZTc1NmEyYTJi NTY5MWIwHhcNMjYwMTI2MTcwMTA2WhcNMjYwMTI3MTcwMTA2WjAzMTEwLwYDVQQD EygwMjExNzQ0ZTQ5MGVjMjgxY2FkYjMxZjcyOTk3MjFkNTkxODc2YzM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1SEZ3HwhQGpltZeE0vLlOKZhyd6q LI+Wdpw8AO4BLzSAY10hsHQyXcDBlUoL61XWlB7U8Ja1831Xp8qkla0RiHz7piZK 3fgTY9l0EUMIIvuTbBF8S9yV6pDmn6oybymrfU1x9W2PQ5gWFiFAUNnAEKkOgTWe 81KtAeAkkJ17fAJQDwIclGnwfP5qyAJHVSIgsWU7FZ7QhvlpCQXj9Qe5mnstRFp3 3EREkic4fGK1m7BaLZdVQLindA36CTSGe6RHzfEgkpc3/j6gQTCvf+U+lDP8Ijqy 9v20pLs+pAfznWFOOL1TmbSzgoyZynCC1wPbZQ8W6tQoQ6wBI+FbcJyN9QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAIRdE5JDsKBytsx9ymXIdWRh2w3MB8GA1UdIwQY MBaAFM0D0T3SbwBEooP8ahHnVqKitWkbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvelFQUlBkSnZBRVNpZ194cUVlZFdvcUsxYVJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9jZmQ0MWUtMzk4ZC00ZjFiLTk5OTUt MWEzZmY1MzJiYzIwLzEvelFQUlBkSnZBRVNpZ194cUVlZFdvcUsxYVJzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi9jZmQ0MWUtMzk4ZC00ZjFiLTk5OTUtMWEzZmY1MzJiYzIw LzEvelFQUlBkSnZBRVNpZ194cUVlZFdvcUsxYVJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASMPuoCI1 J6ysyyZ7AiSjH/MbPlnwrMzsucPod9FKrFULkx867jsuZEQyxjdZ+UVmpbUr/ZtB 5wevPIDvVzEf16032Mz9J51n2loQPyFdckxTVYA9XyBPo9jW2mO0RNIZnK27B4t/ P/Nu8AGss8pXQRaWz4pSpDwgXKtg1AnZF6eUsemwbJY6PCtFM0wGXJUUS0tZyS+Z jR38Z7XJc1AAjwIHNjPnYhjsAIHPOedEXxmTA/M83ckrN9hyD8/Ulb5Liqw0cy3G xc7LuDzqBUNGvasXIFNyydxQgxbfWM/pwXN0eLtwRs+kMaeOxPMjTiqGRXt92QZv Fy73Im92KRceKA== -----END CERTIFICATE-----Generated at Tue Jan 27 01:19:24 2026 by rpki-client